Zoom informed customers on Tuesday that it has patched five vulnerabilities in its applications, including four rated ‘high severity’.
The high-severity vulnerabilities are tracked as CVE-2025-27440, CVE-2025-27439, CVE-2025-0151 and CVE-2025-0150.
Three of them have been described as memory-related issues that can be exploited for privilege escalation via network access. Authentication is required for exploitation.
https://www.securityweek.com/zoom-patch ... abilities/